(no subject)

From: Dan C (cdan2154@gmail.com)
Date: Fri Dec 07 2007 - 22:14:44 ART

• Next message: iosluver@gmail.com: "IE WB 4.1 Lab 20 Task 1.2"
• Previous message: Ben Holko: "RE: magic numbers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Mike,

You should be able to drop the matched packets instead of marking as per
example in the link, I did test this in the past and I was able to drop the
packets at input interface.

Cheers,
Dan

On Dec 8, 2007 10:50 AM, Mike Stout <michaelgstout@gmail.com> wrote:

> Hello
> After investigating some security features i stumbled across this
> reference.
> http://www.cisco.com/warp/public/63/nbar_acl_codered.shtml#methoda
> This implies policy maps using NBAR matches against http url are not
> capable
> of droping packets on the input interface?
>
> Has this been the experience of everybody else?
>
> Thanks
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: iosluver@gmail.com: "IE WB 4.1 Lab 20 Task 1.2"
• Previous message: Ben Holko: "RE: magic numbers"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Jan 01 2008 - 12:04:29 ARST